CN105024826A - Dynamic password verification method - Google Patents
Dynamic password verification method Download PDFInfo
- Publication number
- CN105024826A CN105024826A CN201510477281.4A CN201510477281A CN105024826A CN 105024826 A CN105024826 A CN 105024826A CN 201510477281 A CN201510477281 A CN 201510477281A CN 105024826 A CN105024826 A CN 105024826A
- Authority
- CN
- China
- Prior art keywords
- password
- user
- login name
- destination server
- current
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
A dynamic password verification method provided by the present invention relates to the field of password authentication technology, and is provided to solve a technical problem of security improvement. The method comprises: setting a password generation formula when a user is registering; and working out present entering passwords according to prompt strings randomly generated by a target server and the password generation formula set at registering when the user is logging in the target server. The method provided by the present invention has high security so as to present passwords inputted by users from prying and intercepting.
Description
Technical field
The present invention relates to the technology of cipher authentication, particularly relate to a kind of dynamic password authentication method.
Background technology
Traditional password login needs to input account, password, identifying code three contents, identifying code is mainly used in preventing lawless person from obtaining password by the exhaustive trial of password, although this reduces the difficulty that lawless person obtains password, but because password is changeless, as long as so there is time enough password eventually can be cracked, its fail safe need to improve.Meanwhile, the login additionally inputing to validated user of identifying code brings trouble, thus at present a lot of log in platform both provide input password several times by mistake after just occur the technology of identifying code reducing the fussy degree that validated user operates.
Summary of the invention
For the defect existed in above-mentioned prior art, technical problem to be solved by this invention is to provide the high dynamic password authentication method of a kind of fail safe.
In order to solve the problems of the technologies described above, a kind of dynamic password authentication method provided by the present invention comprises:
User first registers on destination server, and sets a login name when registering, and the password be associated with this login name generates formula;
When user logs in destination server, destination server is the prompt strings that user shows a stochastic generation, user first generates formula according to the password of setting during registration, be current typing password by the Content Transformation of prompt strings, the more current typing password of the login name of setting during registration and conversion gained is inputted destination server in the lump;
Destination server receive user input login name and current typing password after, the password first found out associated by this login name according to the login name of user's input generates formula, and utilize this formula to be current true password by the Content Transformation of current shown prompt strings, again the current typing password that current true password and user input is compared, if both unanimously, allow this login name to log in, otherwise then refuse the login of this login name.
Further, described password generates in formula and includes mathematical formulae, includes numeral in the prompt strings of destination server stochastic generation.
Dynamic password authentication method provided by the invention, identifying code and cryptographic technique are united two into one, the password of user's input constantly changes according to the prompt strings of display, along with the difference of prompt strings, the password of each login is all different, and the password of user's input is not afraid of and is peeped by people, tackles, even can when allowing, directly tell what password others should input and ask others to help to log in, and has the advantages that fail safe is high.
Embodiment
Be described in further detail technical scheme of the present invention below in conjunction with specific embodiment, but following examples are not limited to the present invention, every employing analog structure of the present invention and similar change thereof, all should list protection scope of the present invention in.
A kind of dynamic password authentication method that the embodiment of the present invention provides comprises:
User first registers on destination server, and sets a login name when registering, and the password be associated with this login name generates formula;
When user logs in destination server, destination server is the prompt strings that user shows a stochastic generation, user first generates formula according to the password of setting during registration, be current typing password by the Content Transformation of prompt strings, the more current typing password of the login name of setting during registration and conversion gained is inputted destination server in the lump;
Destination server receive user input login name and current typing password after, the password first found out associated by this login name according to the login name of user's input generates formula, and utilize this formula to be current true password by the Content Transformation of current shown prompt strings, again the current typing password that current true password and user input is compared, if both unanimously, allow this login name to log in, otherwise then refuse the login of this login name.
In the embodiment of the present invention, described password generates in formula can include mathematical formulae, and the prompt strings of destination server stochastic generation can include numeral, also can be made up of pure digi-tal.
Below enumerate example to be further described the embodiment of the present invention:
Example 1: the login arranged when supposing that user registers is called user1, password generates formula and is:
(the 1st bit digital+the 2 bit digital) last 1 bit digital of × 2+;
Destination server be the prompt strings of the stochastic generation that user shows for " 95369536 ", so generate formula according to password and draw (9+5) × 2+6=34, so this current true password of user should be: 34;
Example 2: the login arranged when supposing that user registers is called user1, password generates formula and is:
" abc " connection " the 1st bit digital " connection " last 1 bit digital " connection " the 3rd bit digital × 2 ";
Destination server is the prompt strings of the stochastic generation that user shows is " 95369536 ", so generate formula according to password and show that " abc " connection " 9 " connection " 6 " connection " 3 × 2 " equals " abc966 ", then this current true password should be: abc966;
Example 3: the login arranged when supposing that user registers is called user1, password generates formula and is:
Connection " b " connection that " a " connection " time current " connection " divided exactly 2 when the day before yesterday " " the 1st bit digital × 2 " connection " last 1 bit digital × 3 " connection " the 3rd bit digital+the 4 bit digital ";
Destination server is the prompt strings of the stochastic generation that user shows is " 95369536 ", so when 21 days 11 July in 2015 20 points, generate formula according to password and can show that " a " connection " 11 " connection " 21 divide exactly 2 " connection " b " connection " 9 × 2 " connection " 6 × 3 " connection " 3+6 " equals " a1110b18189 ", then this current true password should be: a1110b18189;
In the embodiment of the present invention, the complexity of password arbitrarily can combine according to the computing capability of individual and safety requirements, simple is exactly the connection permutation and combination pointed out, slightly complicated is exactly the plus and minus calculation of pointing out, complicated is exactly add multiplication and division computing again, more complicated is exactly adds date, time etc. and exceedes suggestion content and the content having dynamic change, and the reliability of such password will improve greatly.
Claims (2)
1. a dynamic password authentication method, is characterized in that comprising:
User first registers on destination server, and sets a login name when registering, and the password be associated with this login name generates formula;
When user logs in destination server, destination server is the prompt strings that user shows a stochastic generation, user first generates formula according to the password of setting during registration, be current typing password by the Content Transformation of prompt strings, the more current typing password of the login name of setting during registration and conversion gained is inputted destination server in the lump;
Destination server receive user input login name and current typing password after, the password first found out associated by this login name according to the login name of user's input generates formula, and utilize this formula to be current true password by the Content Transformation of current shown prompt strings, again the current typing password that current true password and user input is compared, if both unanimously, allow this login name to log in, otherwise then refuse the login of this login name.
2. dynamic password authentication method according to claim 1, is characterized in that: described password generates in formula and includes mathematical formulae, includes numeral in the prompt strings of destination server stochastic generation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510477281.4A CN105024826A (en) | 2015-08-06 | 2015-08-06 | Dynamic password verification method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510477281.4A CN105024826A (en) | 2015-08-06 | 2015-08-06 | Dynamic password verification method |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105024826A true CN105024826A (en) | 2015-11-04 |
Family
ID=54414562
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510477281.4A Pending CN105024826A (en) | 2015-08-06 | 2015-08-06 | Dynamic password verification method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105024826A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105871889A (en) * | 2016-05-16 | 2016-08-17 | 广州视睿电子科技有限公司 | Login method and system |
| WO2017101427A1 (en) * | 2015-12-15 | 2017-06-22 | 乐视控股(北京)有限公司 | Website password generation method and device |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1385781A (en) * | 2001-05-11 | 2002-12-18 | 范平志 | Dynamic password based authentication identifying method |
| CN1716852A (en) * | 2004-07-01 | 2006-01-04 | 谈子晨 | Formula cipher combined graph prompting interactive dynamic cipher checking mode |
| CN1956375A (en) * | 2005-10-24 | 2007-05-02 | 潘静 | Dynamic password identity authentication method and system based on network |
| CN1992592A (en) * | 2005-12-30 | 2007-07-04 | 腾讯科技(深圳)有限公司 | System and method of dynamic password identification |
| CN101355414A (en) * | 2007-07-25 | 2009-01-28 | 原为民 | Authentication system for formulae cipher |
| CN101459516A (en) * | 2009-02-20 | 2009-06-17 | 浙江工业大学 | Dynamic password safe login method |
| CN104253693A (en) * | 2014-06-19 | 2014-12-31 | 于甫 | Interactive dynamic password verification method |
-
2015
- 2015-08-06 CN CN201510477281.4A patent/CN105024826A/en active Pending
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1385781A (en) * | 2001-05-11 | 2002-12-18 | 范平志 | Dynamic password based authentication identifying method |
| CN1716852A (en) * | 2004-07-01 | 2006-01-04 | 谈子晨 | Formula cipher combined graph prompting interactive dynamic cipher checking mode |
| CN1956375A (en) * | 2005-10-24 | 2007-05-02 | 潘静 | Dynamic password identity authentication method and system based on network |
| CN1992592A (en) * | 2005-12-30 | 2007-07-04 | 腾讯科技(深圳)有限公司 | System and method of dynamic password identification |
| CN101355414A (en) * | 2007-07-25 | 2009-01-28 | 原为民 | Authentication system for formulae cipher |
| CN101459516A (en) * | 2009-02-20 | 2009-06-17 | 浙江工业大学 | Dynamic password safe login method |
| CN104253693A (en) * | 2014-06-19 | 2014-12-31 | 于甫 | Interactive dynamic password verification method |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2017101427A1 (en) * | 2015-12-15 | 2017-06-22 | 乐视控股(北京)有限公司 | Website password generation method and device |
| CN105871889A (en) * | 2016-05-16 | 2016-08-17 | 广州视睿电子科技有限公司 | Login method and system |
| CN105871889B (en) * | 2016-05-16 | 2019-03-29 | 广州视睿电子科技有限公司 | Login method and system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN102202067B (en) | Dynamic random cipher registration method | |
| WO2005083610A8 (en) | Token authentication system and method | |
| CN104348609B (en) | A kind of Password Management algorithm of non-memory | |
| MX2016002141A (en) | Enabling access to data. | |
| CN105024826A (en) | Dynamic password verification method | |
| KR101282653B1 (en) | Data substitution encryption device and method | |
| CN104168111A (en) | Method for realizing unified identity authentication of mobile applications based on portable security module | |
| US11095435B2 (en) | Keystroke dynamics anonimization | |
| CN105281901A (en) | Encryption method for cloud tenant key information | |
| CN104052715A (en) | Role-based instant messaging software access control method and apparatus | |
| CN106790114A (en) | A kind of code entry method with prompt facility | |
| CN104079403A (en) | Password secret key distribution system | |
| CN103326851A (en) | Compass encryption and decryption method based on single chip microcomputer | |
| CN106534115A (en) | Electronic medical record system design based on domestic cipher algorithm and method | |
| CN102946311A (en) | Key dispersed method for enhancing safety of symmetric key system | |
| CA3030963A1 (en) | Token-based authentication with signed message | |
| WO2017013752A1 (en) | Server device, information management system, information management method, and computer program | |
| CN107733650A (en) | The dynamic setting method of account password | |
| CN104899528A (en) | Touch screen based secure input method | |
| Tang et al. | Weakness of remote authentication scheme of Chen et al. | |
| Kim et al. | Comparative Analysis of Digital Government Initiatives Between Singapore and Korea | |
| CN103701615A (en) | Programmatic password authentication method | |
| Kang et al. | A Study on the Variable Password Generation Method in Internet Authentication System | |
| Hambleton | Validating and Expanding the Tests of Asteroseismic Scaling Relations Using Red Giant Binary Stars | |
| Howkins | Latin America and Antarctica |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20151104 |